Scythe Framework - An Account Enumeration Tool

Scythe Framework is an amazing tool that you can use to find out which sites are a person using. It is definitely a great tool for Social Engineering. This tool is designed to make it simple to perform account enumeration as part of security testing. The framework offers the ability to easily create new modules (XML files) and speed up the testing process.Note: Download link is at the end of this article.

This tool was created with 2 main use cases in mind:

The ability to test a range of email addresses across a range of sites (e.g. social media, blogging platforms, etc...) to find where those targets have active accounts. This can be useful in a social engineering test where you have email accounts for a company and want to list where these users have used their work email for 3rd party web based services.

The ability to quickly create a custom test case module and use it to enumerate for a list of active accounts. Using either a list of known usernames, email addresses, or a dictionary of common account names.

Why I started this blog?

I started this blog to share my passion with the world. Now it is a part of my daily life. I have a tech blog too, but this one is my favourite, because I really, really like to talk about hacking and security.